Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/EB8092C4009211EE8EF2C82FC4F9AE02.roa
File: EB8092C4009211EE8EF2C82FC4F9AE02.roa (raw, json)
Hash identifier: c7dPMDsdHQNg1/qavITX/QUW/Pwo9pvd+M1jv93M8mw=
Subject key identifier: 24:BE:C4:02:99:A9:A6:FD:28:73:FC:F8:74:FC:36:FE:98:E4:B5:67
Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85
Certificate serial: 301F
Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/EB8092C4009211EE8EF2C82FC4F9AE02.roa
Signing time: Thu 01 Jun 2023 15:42:31 +0000
ROA not before: Thu 01 Jun 2023 15:42:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141180
IP address blocks: 115.108.58.0/24 maxlen: 24
115.108.61.0/24 maxlen: 24
115.108.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Oct 2023 06:21:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12319 (0x301f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85
Validity
Not Before: Jun 1 15:42:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6478bc67-4fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2d:46:ec:f0:1a:db:05:9e:09:30:05:5f:28:
4d:76:a6:8a:e2:2f:3a:db:14:16:47:ac:fc:78:60:
f1:56:27:7a:9a:dc:15:87:f6:17:ee:84:68:69:4e:
cd:83:69:6d:fd:1e:84:d4:1a:9b:f3:6d:21:41:81:
b5:30:71:b9:9f:56:b8:d9:2c:81:52:c4:56:b2:ec:
ea:0d:e9:2f:9c:e4:17:d4:39:54:37:1b:2f:9c:19:
00:a1:b0:7a:7b:ca:b8:b0:4c:23:7a:4a:1b:af:2a:
68:9e:5c:d3:b5:66:eb:19:54:54:ce:17:89:19:aa:
7d:b5:da:b8:a9:7e:51:59:5a:0d:4d:2a:40:e9:1c:
f9:c7:d2:08:8b:f3:bf:8e:2b:ec:84:1f:33:18:57:
9d:90:60:a4:90:94:00:d9:31:14:59:ed:d4:93:03:
bb:e6:84:6f:48:78:ed:e9:5b:22:c0:c4:70:67:af:
68:48:e8:60:86:18:b8:9a:9b:b8:6a:2d:85:95:c4:
c3:5c:a7:0d:bf:cb:06:b4:03:0e:d2:64:40:e7:14:
71:8a:d7:8a:f5:f6:0b:f7:15:ea:8b:af:19:7b:dc:
8f:f6:64:ca:8d:17:f7:6a:13:f5:25:b6:4d:f8:fc:
1b:ef:ef:d1:78:aa:12:28:0f:42:ed:10:0b:81:49:
d2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BE:C4:02:99:A9:A6:FD:28:73:FC:F8:74:FC:36:FE:98:E4:B5:67
X509v3 Authority Key Identifier:
keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/EB8092C4009211EE8EF2C82FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.108.58.0/24
115.108.61.0-115.108.62.255
Signature Algorithm: sha256WithRSAEncryption
8f:e6:35:05:81:9b:a4:b0:f9:21:47:ba:81:1f:fd:fe:27:4f:
82:d6:16:61:89:72:b3:07:aa:08:cc:8f:3f:2a:33:5f:17:b3:
40:35:75:5c:ca:0e:9d:38:b0:b3:ff:c8:9e:2d:0d:15:64:9e:
aa:fc:c8:0d:6a:57:26:15:91:36:83:98:7e:0b:b5:d5:02:b0:
8f:5f:72:24:95:04:3b:a8:69:01:3f:a3:15:7d:83:85:1c:ae:
fe:fc:62:b9:5b:6f:4b:2d:7a:49:59:0a:a7:5f:02:15:7a:00:
b1:1f:14:c3:9c:15:78:b8:40:c2:46:1e:61:c3:15:50:74:d3:
ac:9c:18:87:41:31:88:9a:94:8b:3f:b8:3b:8d:0e:40:28:6d:
9a:b8:43:34:4c:1f:72:7e:f3:01:7c:2a:6f:25:a5:27:63:3d:
87:cc:31:a9:fb:4a:c0:f7:95:a1:3c:33:7a:c4:67:2b:f7:3e:
3c:69:4d:7a:e5:2e:08:23:67:b7:3e:66:12:3b:1b:4a:0a:55:
a9:20:f6:a1:08:a0:df:9f:38:81:57:da:0e:7f:63:58:a6:97:
14:f4:ef:c9:64:58:cf:4c:89:c2:0a:a9:f9:70:e9:f5:02:3e:
e0:77:5f:b3:0a:ee:07:1c:6c:9d:29:4f:07:83:c7:05:32:a8:
bd:cc:38:aa
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgICMB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NENFNzUxMTAvBgNVBAUTKDQ5ODkyNTM3RDhCMkMwMzI1QjdCRTA4MUZEOTI4NkM3
OUJFQTZBODUwHhcNMjMwNjAxMTU0MjMxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDc4YmM2Ny00ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArC1G7PAa2wWeCTAFXyhNdqaK4i862xQWR6z8eGDxVid6mtwVh/YX7oRoaU7N
g2lt/R6E1Bqb820hQYG1MHG5n1a42SyBUsRWsuzqDekvnOQX1DlUNxsvnBkAobB6
e8q4sEwjekobryponlzTtWbrGVRUzheJGap9tdq4qX5RWVoNTSpA6Rz5x9IIi/O/
jivshB8zGFedkGCkkJQA2TEUWe3UkwO75oRvSHjt6VsiwMRwZ69oSOhghhi4mpu4
ai2FlcTDXKcNv8sGtAMO0mRA5xRxiteK9fYL9xXqi68Ze9yP9mTKjRf3ahP1JbZN
+Pwb7+/ReKoSKA9C7RALgUnSyQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCS+xAKZ
qab9KHP8+HT8Nv6Y5LVnMB8GA1UdIwQYMBaAFEmJJTfYssAyW3vggf2Shseb6mqF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0U3NS9EMjJFRjNENkZG
NEIxMUUyODFCRTA2NjI1OTExRUEzMi9TWWtsTjlpeXdESmJlLUNCX1pLR3g1dnFh
b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NZa2xOOWl5d0RKYmUtQ0JfWktHeDV2cWFvVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NENFNzUvRDIyRUYzRDZGRjRCMTFFMjgxQkUwNjYyNTkxMUVBMzIvRUI4MDkyQzQw
MDkyMTFFRThFRjJDODJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E
HjAcMBoEAgABMBQDBABzbDowDAMEAHNsPQMEAHNsPjANBgkqhkiG9w0BAQsFAAOC
AQEAj+Y1BYGbpLD5IUe6gR/9/idPgtYWYYlysweqCMyPPyozXxezQDV1XMoOnTiw
s//Ini0NFWSeqvzIDWpXJhWRNoOYfgu11QKwj19yJJUEO6hpAT+jFX2DhRyu/vxi
uVtvSy16SVkKp18CFXoAsR8Uw5wVeLhAwkYeYcMVUHTTrJwYh0ExiJqUiz+4O40O
QChtmrhDNEwfcn7zAXwqbyWlJ2M9h8wxqftKwPeVoTwzesRnK/c+PGlNeuUuCCNn
tz5mEjsbSgpVqSD2oQig3584gVfaDn9jWKaXFPTvyWRYz0yJwgqp+XDp9QI+4Hdf
swruBxxsnSlPB4PHBTKovcw4qg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org